Managing Azure Active Directory Objects and Microsoft AZ-104 Exam

  • Creating an initiative definition – Creating and Managing Governance

    Posted on

    In this section, you will create an initiative definition that is used for the grouping of policy definitions that align with business objectives, such as the secure configuration of VMs. The initiative that you will be creating is for grouping policies that define resources allowed for the subscription in Azure. Proceed as follows: Figure 3.12… .. / ..

  • Creating a policy definition – Creating and Managing Governance

    Posted on

    In this section, we will run through the creation of a policy definition. The steps are presented here: Figure 3.4 – Selecting Azure Policy in search bar Figure 3.5 – Creating a policy definition • Definition location: This will be the subscription where the policy is to be saved.• Name: This is the policy definition… .. / ..

  • Constructing a policy definition – Creating and Managing Governance

    Posted on

    Note that a policy definition is constructed of the following key components: The following screenshot depicts a sample Azure policy definition: Figure 3.2 – Policy definition overview example The screenshot that follows provides an example of a policy defined to look for key-value pairs (Tag Name and Tag Value). As you can see in the… .. / ..

  • Azure Policy versus RBAC – Creating and Managing Governance

    Posted on

    Both Azure Policy and role-based access control (RBAC) contribute to controlling governance within Azure. While both create methods of controlling access, there is often confusion between the two. We distinguish the difference between them for clarity, as follows: Working with Azure Policy Azure offers predefined built-in policies, as well as an option to create custom… .. / ..

  • Understanding Azure policies – Creating and Managing Governance

    Posted on

    This chapter covers how to establish governance in Azure and create mechanisms for managing it. The topics we will cover will include how to create Azure policies and resource locks and why they exist, as well as applying and managing resource tags. This chapter will assist you in building the skills required to establish a… .. / ..

  • Interpreting access assignments – Managing Role-Based Access Control

    Posted on

    There are a few tips we can provide when interpreting access assignments. First off, you need to understand the scope of the assignment – that is, is it at the management group, subscription group, resource group, or resource level? Next, you can have a look at the role rules; in order to do this, you… .. / ..

  • Providing access to resources by assigning the custom RBAC role – Managing Role-Based Access Control

    Posted on

    The next step is to assign this custom role for a user on a different level. We are going to assign access on the resource group level with an account that has owner permissions on the resource group level: Figure 2.14 – Selecting Resource groups from the main Azure menu Figure 2.15 – Selecting a… .. / ..

  • Creating a custom role – Managing Role-Based Access Control

    Posted on

    Let’s go ahead and use the Azure portal to create a custom RBAC role from scratch named IT Support – Restart VMs only, which can only restart virtual machines and deny the startup and shutdown of them: Figure 2.2 – The search bar in Azure Figure 2.3 – A display of all subscriptions available Figure… .. / ..

  • Creating a custom RBAC role – Managing Role-Based Access Control

    Posted on

    This chapter is focused on managingRole-Based Access Control (RBAC), and you will learn what RBAC is and how to apply it at the different scope levels. This chapter also covers how to create and assign custom RBAC roles and how to interpret RBAC roles within the Azure portal. In brief, the following topics will be… .. / ..

  • Configuring SSPR – Managing Azure Active Directory Objects

    Posted on

    By enabling a self-service password for your users, they are able to change their passwords automatically, without calling the help desk. This will significantly eliminate the management overhead. NoteThe Azure AD free-tier license only supports cloud users for SSPR, and only password change is supported, not password reset. SSPR can be easily enabled from the… .. / ..

Calendar

January 2025
M T W T F S S
 12345
6789101112
13141516171819
20212223242526
2728293031  

Archives

Categories

Pages

Log in/out